Scheduled Maintenance: We are aware of an issue with Google, AOL, and Yahoo services as email providers which are blocking new registrations. We are trying to fix the issue and we have several internal and external support tickets in process to resolve the issue. Please see: viewtopic.php?t=158230
What DNS would you recommend?
What DNS would you recommend?
Hi,
What dns server do you think is the best and why?
https://en.wikipedia.org/wiki/Public_re ... ame_server
Im using now, cleanbrowsing dns, cos they've FamilyFilter and DNSCrypt (So prevent DNS spoofing)
What dns server do you think is the best and why?
https://en.wikipedia.org/wiki/Public_re ... ame_server
Im using now, cleanbrowsing dns, cos they've FamilyFilter and DNSCrypt (So prevent DNS spoofing)
bester69 wrote:STOP 2030 globalists demons, keep the fight for humanity freedom against NWO...
Re: What DNS would you recommend?
You can benchmark them from your location and network. If I remember, there's even a package that does it for you.
You can also run your own DNS but not so many benefits as far as I can see
You can also run your own DNS but not so many benefits as far as I can see
- Head_on_a_Stick
- Posts: 14114
- Joined: 2014-06-01 17:46
- Location: London, England
- Has thanked: 81 times
- Been thanked: 133 times
Re: What DNS would you recommend?
The main benefit of a local nameserver is caching:
I also use Cloudflare, via unwind(8) in OpenBSD & unbound for my other systems.
Code: Select all
Puffy:~$ dig google.com
[...]
;; Query time: 113 msec
[...]
Puffy:~$ dig google.com
[...]
;; Query time: 1 msec
deadbang
Re: What DNS would you recommend?
In a way that makes sense, if you can lower the access time that much, but I get a 16 ms with dig using openDNS (wifi) and a 1-2 ms on LAN (wifi), so the difference is not so drastic for me and would be even less on cable (I have ethernet cabling and can get wired network in all rooms of the house).
when you use a local nameserver, do you dedicate a separate machine for it? Some people have an ARM dev board or router with custom OS to server the entire network. Or do you have a per-machine set-up, or how does it work?
when you use a local nameserver, do you dedicate a separate machine for it? Some people have an ARM dev board or router with custom OS to server the entire network. Or do you have a per-machine set-up, or how does it work?
- Head_on_a_Stick
- Posts: 14114
- Joined: 2014-06-01 17:46
- Location: London, England
- Has thanked: 81 times
- Been thanked: 133 times
Re: What DNS would you recommend?
No, I only have the one laptoppylkko wrote:when you use a local nameserver, do you dedicate a separate machine for it?
I just enable unbound.service and addpylkko wrote:how does it work?
Code: Select all
nameserver 127.0.0.1
I was using systemd-resolved (which has a smaller memory footprint than unbound) but it was causing some delays with lookups and general browsing so I switched.
deadbang
Re: What DNS would you recommend?
I know that openDNS is kind of not open in any sense and owned by Cisco. It just was faster than my ISP. It sounds like a great idea to use your own to keep your own data. But AFAIK, your own nameserver has to pass the data to another server out there anyway. Sometimes I have heard the argument that this protects your data a little bit since then you send the data not so frequently and it can be pooled data of many users, but not so sure of the validity of the argument.
- Head_on_a_Stick
- Posts: 14114
- Joined: 2014-06-01 17:46
- Location: London, England
- Has thanked: 81 times
- Been thanked: 133 times
Re: What DNS would you recommend?
I have unbound configured to forward all requests to Cloudflare but it can query the root nameservers (given in the root.hints file) directly, at the expense of privacy (the servers can see your IP address then).pylkko wrote:your own nameserver has to pass the data to another server out there anyway
deadbang
Re: What DNS would you recommend?
and how did you configure your computer to use DNSCrypt? are you using dnscrypt-proxy?bester69 wrote:Hi,
What dns server do you think is the best and why?
https://en.wikipedia.org/wiki/Public_re ... ame_server
Im using now, cleanbrowsing dns, cos they've FamilyFilter and DNSCrypt (So prevent DNS spoofing)
FWIW I use unbound w/o any upstream server (forward zone) for servers (VPS, NAS) and whatever my home router has (i.e. ISP) for the rest. It's usually faster (read: closer) than other public ones, even Cloudflare.
For some time I used a raspberry pi with dnsmasq as DNS server, but then I also had to use it for DHCP (for internal name resolution to work..), which worked OK (and had the bonus of being able to block ads via DNS for the whole home network), but caused lots of (minor, but annoying) issues with my home router (a Fritzbox, which is about the only one you can use in Germany if you want router and DSL modem in one), so I reverted that :(
Re: What DNS would you recommend?
I would recommend OpenDNS. Though it does have occasional 'issues'.
Cloudflare is nasty and will try to censor sites when it feels like.
Google is the Great Firewall of the West.
Best to create your own DNS files of sites you frequent, but may not be that politically correct.
Cloudflare is nasty and will try to censor sites when it feels like.
Google is the Great Firewall of the West.
Best to create your own DNS files of sites you frequent, but may not be that politically correct.
Re: What DNS would you recommend?
Care to elaborate on that?millpond wrote:I would recommend OpenDNS. Though it does have occasional 'issues'.
Cloudflare is nasty and will try to censor sites when it feels like.
Google is the Great Firewall of the West.
AFAIK OpenDNS does filtering (what you call censoring).
Cloudflare does, reportedly, not. Google doesn't either.
Would be interesting to read your sources on this.
-
- Global Moderator
- Posts: 3049
- Joined: 2017-09-17 07:12
- Has thanked: 5 times
- Been thanked: 132 times
Re: What DNS would you recommend?
Could you elaborate on this too ?millpond wrote:Best to create your own DNS files of sites you frequent, but may not be that politically correct.
What is a "DNS file of sites", and why may it not be politically correct ?
Re: What DNS would you recommend?
Google censorship is well known. Proven in many articles since the election. Just try to find a really politically incorrect video, like Tarrant's or numerous others. Its openly banned 'copyright violations'.It actively tries to block some of my VPN servers. Vile.reinob wrote:Care to elaborate on that?millpond wrote:I would recommend OpenDNS. Though it does have occasional 'issues'.
Cloudflare is nasty and will try to censor sites when it feels like.
Google is the Great Firewall of the West.
AFAIK OpenDNS does filtering (what you call censoring).
Cloudflare does, reportedly, not. Google doesn't either.
Would be interesting to read your sources on this.
Cloudflare will try to block torrent sites periodically. And who knows what else.
OpenDNS will block sites, usually with fake certificate errors.It periodically tries to block my own site. It leads to block.opendns.com
Re: What DNS would you recommend?
On win thre is a native hosts, and it can be added to Linux with a util.p.H wrote:Could you elaborate on this too ?millpond wrote:Best to create your own DNS files of sites you frequent, but may not be that politically correct.
What is a "DNS file of sites", and why may it not be politically correct ?
A native DNS lookup/filter.
-
- Global Moderator
- Posts: 3049
- Joined: 2017-09-17 07:12
- Has thanked: 5 times
- Been thanked: 132 times
Re: What DNS would you recommend?
Do you mean the hosts file ? It is present in GNU/Linux too as /etc/hosts. It is used as a local source for hostname lookup and has nothing to do with DNS.millpond wrote:On win thre is a native hosts, and it can be added to Linux with a util. A native DNS lookup/filter.
Re: What DNS would you recommend?
Google -- as a search engine -- may block/censor/hide whatever they please. It's not a public service after all.millpond wrote: Google censorship is well known. Proven in many articles since the election. Just try to find a really politically incorrect video, like Tarrant's or numerous others. Its openly banned 'copyright violations'.It actively tries to block some of my VPN servers. Vile.
Cloudflare will try to block torrent sites periodically. And who knows what else.
OpenDNS will block sites, usually with fake certificate errors.It periodically tries to block my own site. It leads to block.opendns.com
However you were referring to Google's DNS servers (8.8.8.8 and 8.8.4.4). I have yet to see evidence that they censor/block/spoof anything at the DNS server.
The same goes for Cloudflare. You are merely speculating, and referring to "since the election" as if there was a, single, universal, election.
OpenDNS does filtering *by design*, i.e. you can choose a DNS server with ad and/or porn filterning, etc.
So again, do you have any evidence that Google or Cloudflare DNS servers are playing foul? or are you just trolling?
Re: What DNS would you recommend?
Sorry this is a little late.
I've been using Cloudflare 1.1.1.1 for some time.
Please see https://www.cloudflare.com/learning/dns ... s-1.1.1.1/
1.1.1.1 is a public DNS resolver that makes DNS queries faster and more secure.
https://blog.cloudflare.com/dns-resolver-1-1-1-1/
We’re using the following IPv4 addresses for our resolver: 1.1.1.1 and 1.0.0.1. Easy to remember. These addresses have been provided to Cloudflare by APNIC for both joint research and this service. You can read more about their work via the APNIC blog.
DNS resolver, 1.1.1.1, is served by Cloudflare’s Global Anycast Network.
I've been using Cloudflare 1.1.1.1 for some time.
Please see https://www.cloudflare.com/learning/dns ... s-1.1.1.1/
1.1.1.1 is a public DNS resolver that makes DNS queries faster and more secure.
https://blog.cloudflare.com/dns-resolver-1-1-1-1/
We’re using the following IPv4 addresses for our resolver: 1.1.1.1 and 1.0.0.1. Easy to remember. These addresses have been provided to Cloudflare by APNIC for both joint research and this service. You can read more about their work via the APNIC blog.
DNS resolver, 1.1.1.1, is served by Cloudflare’s Global Anycast Network.
- Head_on_a_Stick
- Posts: 14114
- Joined: 2014-06-01 17:46
- Location: London, England
- Has thanked: 81 times
- Been thanked: 133 times
Re: What DNS would you recommend?
I've switched from Cloudflare to Quad9, it's a bit slower but it blocks malware sites.
deadbang
Re: What DNS would you recommend?
I think cleanbrowsing is better or faster than Quad9, and has malware blocksHead_on_a_Stick wrote:I've switched from Cloudflare to Quad9, it's a bit slower but it blocks malware sites.
https://cleanbrowsing.org/filters#securityBlocks access to phishing, spam, malware and malicious domains. Our database of malicious domains is updated hourly and considered to be one of the best in the industry.
bester69 wrote:STOP 2030 globalists demons, keep the fight for humanity freedom against NWO...